DevOps Speakeasy with Brett Smith
We caught up with Brett Smith, Software Architect at SAS.
In his session, Supply Chain Robots, Electric Sheep, and SLSA
Brett discusses creating automation, shifting left, attack vectors, attestation, verification, zero trust, and how the SLSA specification helps implement solutions for each. Most importantly, security must apply throughout a pipeline. The talk will lead to a larger discussion about the challenges of securing the supply chain, supporting EO 14028 and ISO27001, and improving the security posture of your pipelines.